Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authorization requirements, which allows remote authenticated users to obtain superadmin access via a request to this interface, aka Bug ID CSCud75180.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Secure ACS 权限许可和访问控制漏洞
Vulnerability Description
Cisco Secure Access Control System(ACS)是美国思科(Cisco)公司的一套安全访问控制系统。该系统可通过RADIUS、TACACS协议分别对网络访问和网络设备访问进行控制。 Cisco Secure ACS 5.4.0.46.6及之前的版本中的RMI接口中存在权限许可和访问控制漏洞,该漏洞源于程序没有正确执行身份验证操作。远程攻击者可通过发送请求到此接口利用该漏洞获取超级管理员权限。
CVSS Information
N/A
Vulnerability Type
N/A